MAL_PyDomer_Gen_Mar21_1

Rule Info

Required Modules
[]
Date
2021-03-29
Rule Hash
40b1ec3385582008ccc91a2756241fb2
Name
MAL_PyDomer_Gen_Mar21_1
Author
Florian Roth
Tags
['EXE', 'MAL', 'FILE', 'GEN']
Minimum Yara
1.7
Score
75
Av Ratio
0
Description
Detects PyDomer malware used in Exchange exploitation

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
0
Suspicious (< 10 engines)
1
Clean (0 engines)
0

Rule Matches

Timestamp
Total
Positives
Hash
VT
2021-10-21 19:09:38
67
4
90e2cbb2122295b011d909ae12ba0338e26ad554252df5c3e03469496abafbaa

Rule Matches per Month (last 24 months)